Not to mention that people have jobs and use their credit cards, no way even to hide the most important personal identifying information.

Exactly, this is a lost cause. If you participate in society your essential data are simply out there. For most people the task is to minimize their footprint. If we are talking about evading mass surveillance, then we should take for granted that the person will be to one or another degree marginalized, or lead a fringe lifestyle.

Sure, I see where you are coming from. I used to be in favor of PGP as well, but I think I just was conditioned to it because it was everywhere, eg Linux repositories. The argument I found more convincing in this article is that PGP is a swiss-army knife. You might want to use it in an emergency, but professionals have special tools for each different task. In fact, the article suggests very nice alternatives for each task: Encrypt with age , sign with minisign. Two different tasks, two different tools, no need for a web of trust. Just for the arguments sake why do you think that PGP is worth it given the burden of entry?

Perhaps we could benefit from sth like MetaCritic for science.

As far as I know the peer reviewers are in most cases now selected by the editor, they self-select to respond, are not paid for their work, and the process for alarmingly many journals is not even blind. I always thought that this makes the process vulnerable to network effects in the field, since people are obliged to a certain etiquette when commenting on established figures in their own field. So yes, I get where you are coming from, but similar to the scientific method, peer review is also great to describe in theory, in practice it would require much more precise protocols, like Web protocols I might say. I really don’t want to be a pessimist about science in the current political climate, but if we want these great ideals (Scientific method, Peer Reviewed evidence) we will have to abandon the existing situation as soon as possible.

People say this over and over “depends on your threat model” and yet people seem to have a hard time understanding that. Your threat model is “who is your adversary and what he is willing/able to do”. Your security goal is what do you want to keep from your adversary.

As others said, if you are an activist or sth important, perhaps you might want to build a working knowledge of cryptography yourself. If you just want META not being able to see your NSFW chat with your romantic partner Signal might be more than enough. In fact, people way more relevant than me also suggest that Signal is good even for bounty hunter vulnerability reporting.

Having said that, what bugs me most is that people think the instant messaging format as suitable for everything: activism, jobs, crimes, broadcasting 1970’s prog rock for extraterestrials , whatever lmao. Do you really want to use your phone for all that? Like, just carrying the phone around in the first place nullifies your other precautions, for all advanced threat models beyond privacy of non-critical social messaging.

Persistent/resourceful adversaries can eventually get to you, using a set of penetration and intelligence techniques, which means, if you are involved, the convenience of messaging your partners in crime from the phone in your pocket while waiting for a bus is a convenience you probably can’t afford.

protected by PGP

Someone here recently linked to this gem https://www.latacora.com/blog/2019/07/16/the-pgp-problem/

The article warns PGP over Email is a safety concern. They suggest Signal instead. (And several other tools to replace PGP)

This is not just about the pressure put on academics to publish, but it is a whole systemic rot, that is not even remotely living up to the “peer reviewed evidence” myth.

The whole idea of an intermediary authority for scientific publishing is a scam, and it corrupts people who want/need to be in the pyramid. The whole thing is ill-conceived, needs to be abolished, and a new thing should be put in its place. At some point someone said, “I can ditch all this and just publish research on my blog, then people will criticize and build upon that”. No publisher, no paywall, no problem. If we follow this example, all of these issues can disappear overnight. But the vast majority of professionals value their career more than anything else, including our tantamount tenets of what science communication should look like.

You might object that “intermediary authorities” and “peer review” are essential to prevent disinformation and conspiracy theories. Well, we are past this point aren’t we? Did this system prevent conspiracy theories and disinformation, hoaxes, and fraudsters this far? No, so how exactly will it prevent all of these terrible things in the future? If anything, building arguments in the open without paywalls might deter at least some of the conspiracy theorists that brandish paywalls as further evidence of cover-ups and secrecy, and ditching the horrible jargon and high-brow style might actually help the common sense of scientific arguments just shine, and combat the rising anti-intellectualism of right-wing conspiracy theorists.

Like, if you explain Elsevier’s etc business model to any lay person (Pay me money so that I let you publish to my super-selective journal and feed your vanity) they have the most funny reactions, because to anyone who is not conditioned to this absurdity, it just sounds like a pyramid scheme.

I can’t help wondering what is up with all those people fighting in comments about encryption. You make the point time and again that having encrypted media is somehow suspicious. I see where you are coming from.

• There are cases where people have gotten in trouble for using TOR/Signal, because it was presented to the court that “this is what criminals use”.
• There are those Wall Street companies that got in trouble for using encrypted messengers with trading partners.

We know about these, because it makes headlines when it happens.

Yet, there are people here, in any similar discussion, not just this one, that keep telling us that encryption is useless because authorities can more easily break your bones than brute force your private key, and you are going to be in trouble just for having encrypted media.

Is that so? Remember the fuss when federal regulators wanted Apple to install backdoors to encrypted i-Phones? Why so? No no, bear with me, if you people are correct, then every person with an encrypted i-Phone should be in a watchlist? What about all these Linux laptops all with LUKS on the main hard drive, flying around?

How come we don’t hear about those people being prosecuted and brutalized every other day in all of these alternative media we are following?

Regarding encryption, I have a right to my fucking privacy and if you want to know what is in my hard drive, then you are the weird one. Now let’s discuss criminal prosecution. If the authorities have something on you and they need whatever is in your encrypted drive to convict you, then they do not have anything on you unless they break the encryption. The more people practicing encryption the less fruitful their efforts will be. Your argument amounts to little more than the very authorities slogan “if you don’t have something to hide”. More people using encryption should make it sink that not only people with something to hide will use encryption, and indeed, all these everyday, non-criminal people are already using Encryption in i-Phones and Linux without having their bones broken.

Yet you keep repeating this rhetoric, which seems to have no other purpose than deter people from using encryption.

Now let’s discuss brutality. If you live in a police state that can kidnap you and rough you up to forgo your protected right to privacy, then you don’t have a problem with encryption, but a huge political problem. In that case encryption won’t liberate you, but at the same time you have much bigger problems, and an entirely different threat model.

So the only thing you people could, in good faith, add to the discussion is “If you live in a police state, don’t rely solely on encryption, and update your threat model”. The other things you keep going on and on about are essentially a rebranded “if you don’t have something to hide” and they only seem designed to discourage people from adopting encryption altogether, and the fact you don’t let go can only mean one fucking thing.

This is a story from August 2023, and was covered in many outlets (I quote here NYT for reference only)

Federal regulators continued their crackdown against employees of Wall Street firms using private messaging apps to communicate, with 11 brokerage firms and investment advisers agreeing Tuesday to pay $549 million in fines.

Wells Fargo, BNP Paribas, Société Générale and Bank of Montreal were hit with the biggest penalties by the Securities and Exchange Commission and the Commodity Futures Trading Commission. Together, the brokerage and investment advisory arms of those four financial institutions accounted for nearly 90 percent of the fines, according to statements released by the regulators.

Original NYT

Archived version

You might have a different type of person in mind than other commenters. Most commenters had such people in mind who won’t install a password manager or an ad-blocker, or won’t hard reboot their Windows unless supervised. Having said that, I don’t think that even if you had technical people in mind this fits the question. They tend to take substantial more effort to learn and use effectively than the scope set by the original question. I thought this question was for little things that have a quick, lasting, and substantial effect. Learning awk and sed is a different thing entirely, I think of those more as productivity tools you can invest in mastering, and pay off in the long run.

That’s a more accurate branding.

We reached the point were robot drivers are dicks also

Isn’t it already like that with tractors and some phones?

Some US bank got in trouble for using it internally.

I can’t fathom any reluctance coming from the left with respect to unionizing and providing necessary health services to any worker. If people do need to resort to sex work to make a living, then what are they supposed to do when they get older? Do you have to do a “respectable” job just to have the right to …retire? I feel some arguments come from a cruel place.

Add universal heath care including addiction treatment. This might or might not include de-penalization of addiction, depending on the jurisdiction. Breakdown this more to make clear what I mean. Besides the obvious complementarity between UBI and universal health care, people get to do this because they are also addicted, not just poor. Some are also manipulated by means of being addicted. The current approach that punishes the addicted instead of treating them only makes this worse. Countries that have made addiction a healthcare issue rather than a criminal one have seen results.

In Reddit, many subs sprouted out of successful AskReddit questions. Just saying. For people who want more traffic in Lemmy, everyone should feel welcome to suggest their interests, zero fucks given. Or what exactly, ban questions about …fries?

Hence the point

Michael Reeves

Lol, I’ve never heard of this guy before. Has he done this already? 😂

Alright, hear me out. We go with the 10 months of 35 days and a special month of 15 days, but the 15 days is just one giant celebration. Just 15 days of nothing but arts and crafts and hanging out with friends. (For Context)

Enter the Igbo calendar, a balanced calendar without the particular complications of the Western Julian/Gregorian calendars.

The calendar has 13 months in a year (Afo), 7 weeks in a month (Onwa), and 4 days of Igbo market days (Afor, Nkwo, Eke, and Orie) in a week (Izu) plus an extra day at the end of the year, in the last month.

I was about to post about it, as a suggested replacement for the POSIX time standard, now I have to think that our imaginary month off is at stake.